CVE-2013-4231
libtiff < 4.0.3 - Denial of Service via Crafted GIF or TIFF Image
Title source: llmDescription
Multiple buffer overflows in libtiff before 4.0.3 allow remote attackers to cause a denial of service (out-of-bounds write) via a crafted (1) extension block in a GIF image or (2) GIF raster image to tools/gif2tiff.c or (3) a long filename for a TIFF image to tools/rgb2ycbcr.c. NOTE: vectors 1 and 3 are disputed by Red Hat, which states that the input cannot exceed the allocated buffer size.
References (9)
Core 9
Core References
Issue Tracking x_refsource_confirm
http://bugzilla.maptools.org/show_bug.cgi?id=2450
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-0223.html
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2013/dsa-2744
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/54543
Issue Tracking x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=995965
Various Sources mailing-list
x_refsource_mlist
http://www.asmail.be/msg0055359936.html
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/54628
Mailing List mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2013/08/10/2
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/61695
Scores
EPSS
0.1839
EPSS Percentile
95.3%
Details
CWE
CWE-119
Status
published
Products (3)
libtiff/libtiff
4.0 (8 CPE variants)
libtiff/libtiff
4.0.1
libtiff/libtiff
< 4.0.2
Published
Jan 19, 2014
Tracked Since
Feb 18, 2026